Magnet Forensics has revealed their acquisition of Comae Technologies, a cybersecurity firm that specializes in incident response and memory analysis.

Magnet have made similar acquisitions in the past and the Comae deal marks the company’s second since its Toronto Stock Exchange debut in April 2021. In September 2021, Magnet purchased Colorado-based DME Forensics, which focuses on video and multimedia forensics, for $9 million USD. Magnet has also previously acquired Virginia-based digital evidence case and lab management solution Sentinel Data.

Comae works with cloud-based memory analysis to recover evidence from the volatile memory of devices. Magnet Forensics anticipates the acquisition will accelerate the development of the memory analysis platform within the Magnet Idea Lab, an incubator made up of hundreds of investigators and analysts from police agencies and enterprises.

As part of the acquisition, Comae Founder Matt Suiche will continue to develop the company’s analysis platform and integrate it into Magnet’s existing solutions by working with their own memory analysis and incident response research team. The company also says Suiche’s team at Comae will work closely with Magnet Forensics going forward.

“Memory analysis plays a critical role in incident response investigations because it allows enterprises and public safety agencies to recover buried evidence and understand what happened on devices involved in cyber incidents,” said Adam Belsher, Chief Executive Officer of Magnet Forensics in a statement.

“Very few organizations have the expertise and knowledge to develop memory analysis solutions. With Comae’s platform and the help of its memory analysis experts, Magnet Forensics can address a growing need for our customers while continuing to build on our comprehensive digital investigation platforms.”

Magnet’s announcement explains that enterprises and police agencies are both looking to use memory analysis to respond to increases in the volume and complexity of cyber incidents. It further describes how memory analysis can help identify compromised devices in a malware or ransomware attack, as they often begin their investigations by examining memory because it can reveal the infection vectors and post-compromise activities of cyber incidents. It can also help analysts identify modern malware variants.

For more information, visit: www.magnetforensics.com